74c6bf31a9e29ce538314f7e22cae263_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74c6bf31a9e29ce538314f7e22cae263_JaffaCakes118
Size

21KB
MD5

74c6bf31a9e29ce538314f7e22cae263
SHA1

0c50756b361c51b38430336eca6da5d5b0d67a38
SHA256

136c20e27ea8dc916621739321bceb85cab7575566f6dc42e4665234386ba1ae
SHA512

dde09779c7f0eb5dfe02cebd5c0c162268b11b4517bc795b682048902d8ac3cee8f5c72ef31f053a913a47e0023e19381bb49f15b3045375c1b055076dd9d662
SSDEEP

384:VdOLrnpiIQZxxmfO1wkMEgXl4NBb7xTsi56ipk:+npzyBzJjEm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74c6bf31a9e29ce538314f7e22cae263_JaffaCakes118

Files

74c6bf31a9e29ce538314f7e22cae263_JaffaCakes118
.sys windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 816B - Virtual size: 814B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.��u
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 608B - Virtual size: 606B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ